vendor:
Network File Search Pro
by:
malwrforensics
7,8
CVSS
HIGH
SEH exploit
119
CWE
Product Name: Network File Search Pro
Affected Version From: 2.3
Affected Version To: 2.3
Patch Exists: YES
Related CWE: N/A
CPE: a:10-strike:network_file_search_pro:2.3
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2016
10-Strike Network File Search Pro 2.3 Registration code SEH exploit
This exploit is for 10-Strike Network File Search Pro 2.3. It is a SEH exploit which uses a buffer overflow to overwrite the SEH handler. The exploit code creates a file called poc.txt which contains a buffer of 0xfe0 bytes followed by shellcode, junk, a jump instruction and a nseh instruction. When the poc.txt file is opened in the application, the SEH handler is overwritten and the shellcode is executed.
Mitigation:
The vendor has released a patch to address this vulnerability.
